Dear developers, I want to secure an STS with an issued token over the transport layer (i.e., an STS Client sends a RequestSecurityToken to the STS with a SAML assertion in the security header for authentication). It found wso2-rampart has the following implementation for SAML assertion: https://github.com/wso2/wso2-rampart/blob/master/modules/rampart-trust/src/main/java/org/apache/rahas/RahasData.java#L200 However, in WSO2 IS, I cannot find an appropriate security policy in the "Security Token Service Configuration". Do you have any advices for me? Many thanks
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev